Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: pZWQjPBh78KhNiTSaqXPuYt2BgWYvnqxwUKmrWDFuCk=
Subject key identifier: C5:8D:1E:81:EC:71:79:8D:1D:4A:07:50:24:89:46:9C:D3:99:9A:F1
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 019CABD9B9D52529A88D7E0AA163461BAFAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 082E
Signing time: Mon 02 Mar 2026 00:01:38 +0000
Manifest this update: Mon 02 Mar 2026 00:01:38 +0000
Manifest next update: Tue 03 Mar 2026 00:01:38 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: GepwRabXzHFEZBaJUccEtoidI/XvYDKjoOfKt17kJJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:b9:d5:25:29:a8:8d:7e:0a:a1:63:46:1b:af:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: Mar 2 00:01:38 2026 GMT
Not After : Mar 3 00:01:38 2026 GMT
Subject: CN=c58d1e81ec71798d1d4a07502489469cd3999af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8e:5e:4d:97:fe:c5:0d:a8:d9:18:77:f1:8a:
35:12:61:9f:d3:46:77:00:f9:55:b7:ab:3c:d8:4b:
cd:1c:c3:67:2a:8b:43:0a:c6:b9:c9:6f:6f:15:d6:
04:ad:2a:ba:d6:e8:14:8e:44:2a:08:1f:fa:3e:6a:
d7:9d:9e:a9:96:f7:6d:bd:8e:20:6d:a1:7e:38:e4:
62:10:8d:9c:92:ab:8e:03:41:c5:b2:27:ae:7d:57:
a6:5e:e1:dd:b3:a0:8a:0b:fa:24:b4:09:dc:35:a9:
cb:35:ae:25:e6:dd:c5:ac:2c:85:62:b7:7f:53:56:
ac:f0:66:44:10:d8:52:8d:95:b5:a7:a2:c8:88:67:
8f:3b:a8:7a:b5:51:62:74:fc:63:81:55:2d:87:45:
d2:18:ec:eb:a8:0f:10:37:f1:1c:5c:39:70:bf:c8:
23:ec:bf:43:80:f7:1f:68:49:a4:6d:2e:05:19:f2:
25:9a:2b:72:7d:d1:1f:f5:68:ed:36:98:f0:90:96:
3a:4a:e0:9a:8d:62:a8:d4:2b:55:e4:20:2c:2d:04:
ba:e1:4d:a8:6b:70:6b:03:db:01:d7:8f:2a:22:a3:
75:97:8c:f2:7d:93:3e:4d:8b:16:b2:69:83:dc:9a:
3a:64:bd:d1:52:bf:a2:b2:53:9b:10:73:30:49:ac:
fd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8D:1E:81:EC:71:79:8D:1D:4A:07:50:24:89:46:9C:D3:99:9A:F1
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:aa:50:59:a2:15:78:51:45:e9:19:30:b7:c7:d4:80:d6:e5:
be:e2:2a:86:54:36:86:6c:88:12:95:8a:39:60:9f:e2:de:9c:
dc:c8:b5:45:37:d5:8b:ed:46:fb:43:9a:85:99:61:ff:1d:fe:
26:6e:44:7c:be:2b:5a:f6:ee:a0:aa:77:52:df:2a:a0:e6:fd:
7f:e2:50:13:35:28:72:8b:aa:4a:c2:99:e2:42:31:16:bb:2a:
5a:a9:28:57:71:99:08:58:df:6d:9d:3f:18:6d:98:bf:f2:10:
6f:1f:a0:10:a3:56:9b:4e:ba:37:0b:53:9b:a5:10:7f:21:4a:
8d:cb:da:4c:8f:10:4a:26:3d:e9:14:7b:54:86:e8:8b:ad:bd:
aa:e5:02:98:c4:88:d0:09:96:da:8c:8e:10:75:74:a0:fb:26:
f6:c7:d0:9b:ff:d8:9a:8a:72:61:c3:21:dd:70:a6:98:ab:37:
1b:64:9d:63:48:24:4c:13:4c:de:fe:d8:86:73:11:ee:df:f3:
2e:5d:8c:c7:d5:f9:38:6f:3a:82:37:d6:34:d4:61:08:c2:79:
4e:b7:0b:9e:f7:2f:d3:25:7d:89:b2:c2:38:16:72:00:66:f6:
4d:23:44:e6:91:0c:35:db:0b:3a:d0:85:35:f8:27:ce:97:93:
06:4d:c6:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2bnVJSmojX4KoWNGG6+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkN2RiMTQ5NThjZjRkNzg1ZTU5ZWY1YzZjNjc5ZjhlZjU0
YzFkOGIwHhcNMjYwMzAyMDAwMTM4WhcNMjYwMzAzMDAwMTM4WjAzMTEwLwYDVQQD
EyhjNThkMWU4MWVjNzE3OThkMWQ0YTA3NTAyNDg5NDY5Y2QzOTk5YWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArI5eTZf+xQ2o2Rh38Yo1EmGf00Z3
APlVt6s82EvNHMNnKotDCsa5yW9vFdYErSq61ugUjkQqCB/6PmrXnZ6plvdtvY4g
baF+OORiEI2ckquOA0HFsieufVemXuHds6CKC/oktAncNanLNa4l5t3FrCyFYrd/
U1as8GZEENhSjZW1p6LIiGePO6h6tVFidPxjgVUth0XSGOzrqA8QN/EcXDlwv8gj
7L9DgPcfaEmkbS4FGfIlmityfdEf9WjtNpjwkJY6SuCajWKo1CtV5CAsLQS64U2o
a3BrA9sB148qIqN1l4zyfZM+TYsWsmmD3Jo6ZL3RUr+islObEHMwSaz9rQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMWNHoHscXmNHUoHUCSJRpzTmZrxMB8GA1UdIwQY
MBaAFF19sUlYz014XlnvXGxnn471TB2LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFgyeFNWalBUWGhlV2U5Y2JHZWZqdlZNSFlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yMTdlOTctNmIyYy00YTVkLTkxNWIt
OTQ5YzYyOGU1ZjNjLzEvWFgyeFNWalBUWGhlV2U5Y2JHZWZqdlZNSFlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yMTdlOTctNmIyYy00YTVkLTkxNWItOTQ5YzYyOGU1ZjNj
LzEvWFgyeFNWalBUWGhlV2U5Y2JHZWZqdlZNSFlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkapQWaIV
eFFF6Rkwt8fUgNblvuIqhlQ2hmyIEpWKOWCf4t6c3Mi1RTfVi+1G+0OahZlh/x3+
Jm5EfL4rWvbuoKp3Ut8qoOb9f+JQEzUocouqSsKZ4kIxFrsqWqkoV3GZCFjfbZ0/
GG2Yv/IQbx+gEKNWm066NwtTm6UQfyFKjcvaTI8QSiY96RR7VIboi629quUCmMSI
0AmW2oyOEHV0oPsm9sfQm//YmopyYcMh3XCmmKs3G2SdY0gkTBNM3v7YhnMR7t/z
Ll2Mx9X5OG86gjfWNNRhCMJ5TrcLnvcv0yV9ibLCOBZyAGb2TSNE5pEMNdsLOtCF
NfgnzpeTBk3GTA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:26:35 2026 by rpki-client